Filters
Software
IBM Cognos Analyticsjsonwebtoken unrestricted key type could lead to legacy keys usage
8.1
First published (updated )
IBM Cognos Analyticsjsonwebtoken vulnerable to signature validation bypass due to insecure default algorithm in jwt.verify()
7.6
First published (updated )
Auth0 passport-wsfed-saml2Passport-wsfed-saml2 vulnerable to Authentication Bypass for WSFed authentication
7.5
First published (updated )
Auth0 Express Openid ConnectOpen Redirect in express-openid-connect
7.5
First published (updated )
Auth0 Express Openid ConnectSession fixation in express-openid-connect
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Auth0 Nextjs-auth0Reflected XSS from the callback handler's error query parameter
8
First published (updated )
Auth0 Ad\/ldap ConnectorCSRF in Auth0 ad-ldap-connector
8.8
First published (updated )
Auth0 Auth0.jsAuthorization header is not sanitized in an error object in auth0
7.7
First published (updated )
Auth0 Login By Auth0An issue was discovered in the Login by Auth0 plugin before 4.0.0 for WordPress. A user can perform …
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
nuget/Auth0.AuthenticationApiAuth0 auth0.net before 6.5.4 has Incorrect Access Control because IdentityTokenValidator can be acci…
7.5
First published (updated )
Auth0 Passport-SharePointAuth0 Passport-SharePoint before 0.4.0 does not validate the JWT signature of an Access Token before…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.